Vulnerability Description
On Barracuda CloudGen WAN Private Edge Gateway devices before 8 webui-sdwan-1089-8.3.1-174141891, an OS command injection vulnerability exists in /ajax/update_certificate - a crafted HTTP request allows an authenticated attacker to execute arbitrary commands. For example, a name field can contain :password and a password field can contain shell metacharacters.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Barracuda | T100B Firmware | 8.3.1 |
| Barracuda | T100B | - |
| Barracuda | T200C Firmware | 8.3.1 |
| Barracuda | T200C | - |
| Barracuda | T400C Firmware | 8.3.1 |
| Barracuda | T400C | - |
| Barracuda | T600D Firmware | 8.3.1 |
| Barracuda | T600D | - |
| Barracuda | T900B Firmware | 8.3.1 |
| Barracuda | T900B | - |
| Barracuda | T93A Firmware | 8.3.1 |
| Barracuda | T93A | - |
| Barracuda | T193A Firmware | 8.3.1 |
| Barracuda | T193A | - |
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2023/Mar/2ExploitMailing ListThird Party Advisory
- https://campus.barracuda.com/product/cloudgenwan/doc/96024723/release-notes-8-3-Release Notes
- https://sec-consult.com/vulnerability-lab/advisory/os-command-injection-in-barraExploitThird Party Advisory
- https://www.barracuda.com/products/network-security/cloudgen-wanProduct
- http://seclists.org/fulldisclosure/2023/Mar/2ExploitMailing ListThird Party Advisory
- https://campus.barracuda.com/product/cloudgenwan/doc/96024723/release-notes-8-3-Release Notes
- https://sec-consult.com/vulnerability-lab/advisory/os-command-injection-in-barraExploitThird Party Advisory
- https://www.barracuda.com/products/network-security/cloudgen-wanProduct
FAQ
What is CVE-2023-26213?
CVE-2023-26213 is a vulnerability with a CVSS score of 7.2 (HIGH). On Barracuda CloudGen WAN Private Edge Gateway devices before 8 webui-sdwan-1089-8.3.1-174141891, an OS command injection vulnerability exists in /ajax/update_certificate - a crafted HTTP request allo...
How severe is CVE-2023-26213?
CVE-2023-26213 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-26213?
Check the references section above for vendor advisories and patch information. Affected products include: Barracuda T100B Firmware, Barracuda T100B, Barracuda T200C Firmware, Barracuda T200C, Barracuda T400C Firmware.